$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa File: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (raw, json) Hash identifier: OJmgOUcQjiJMwxM7bwdSAtFKotOY/2x5tv0dDie1nVQ= Subject key identifier: 60:1A:10:F1:04:B0:00:41:EC:81:E4:94:EA:99:22:09:88:62:34:4D Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 11710292FAE2757598D6090CD9A6ABAB633FE86D Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa Signing time: Tue 24 Feb 2026 00:00:26 +0000 ROA not before: Tue 24 Feb 2026 00:00:26 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:71:02:92:fa:e2:75:75:98:d6:09:0c:d9:a6:ab:ab:63:3f:e8:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:26 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=d5d7f3bcacec7c36ec5aaf1cd560d3e19a4f489e784a003224334d412db32266, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b3:93:4c:fc:40:3c:bd:b0:fb:ed:52:4b:cd: c4:44:4c:9a:d8:8f:c9:07:8a:04:9e:1a:fa:3d:f9: 07:f6:71:75:98:72:ca:d5:ea:d9:2e:62:4d:16:0c: e4:0b:2a:ae:0e:00:20:62:e1:55:ac:5f:6b:f4:99: 80:22:9f:4f:29:f5:e5:b6:e4:8f:7e:c9:44:7a:04: 09:b9:5c:52:55:cc:1c:3f:53:f6:11:15:f3:d3:89: 31:9e:fa:74:1f:ab:e8:1a:91:66:98:07:42:11:7c: 38:fb:8c:ef:1b:26:44:8d:cc:d9:d9:ee:05:bf:95: bf:db:97:5a:a6:c8:f0:bb:75:d3:ff:98:fc:c7:97: 60:0c:79:c7:77:15:dc:29:09:f8:81:01:13:17:d3: b7:79:f6:35:64:3a:cf:34:79:85:8a:ff:bf:11:c8: ff:00:df:46:c7:5e:b8:9a:65:20:e8:7b:cb:ec:8a: a7:99:b1:e7:5a:d0:b7:c4:3f:14:50:36:9d:b4:24: 3e:55:62:2c:95:e1:4b:d0:83:6a:e3:fe:6a:14:d8: 43:36:a5:be:65:a6:ed:d5:1b:e5:97:ca:01:05:49: cf:e4:67:f7:d7:0f:a0:be:90:9d:1d:47:7d:80:88: b2:e6:fd:a9:82:55:ae:7c:df:f2:b8:3d:38:f4:be: 09:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1A:10:F1:04:B0:00:41:EC:81:E4:94:EA:99:22:09:88:62:34:4D X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.196.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:86:77:24:88:db:b3:5c:a6:9f:ac:87:99:8f:c9:77:5a:c3: 33:a4:9c:5b:92:64:6c:f2:45:23:f3:40:c3:63:5f:08:32:3e: 52:31:c4:e5:eb:e7:9e:76:96:b6:db:86:3e:ef:b6:3e:bb:1e: a1:52:6b:b9:c4:3e:e4:9d:97:96:d1:b9:6f:47:07:e0:eb:1e: c4:4e:56:6f:ea:96:87:6d:f6:b6:a0:db:65:35:37:f6:39:8e: 84:9e:18:33:2d:97:16:5c:e9:01:a5:16:d6:be:92:c0:fc:64: b9:26:1e:c3:7f:40:5d:d0:46:9c:16:62:6d:b9:25:e2:11:34: 88:f4:e7:db:bd:05:79:ad:e1:75:6d:9f:ca:e2:f2:f2:d2:af: c5:07:8e:b3:71:77:70:64:57:c2:ec:99:16:c4:99:05:2a:5e: 44:3e:10:da:20:26:35:ec:a8:69:91:20:71:6f:a6:6a:77:e5: 2b:e0:10:0d:40:70:f6:27:e9:90:ed:ba:e3:7c:11:73:4d:a5: d0:9c:ae:0e:de:3c:ff:61:6c:5f:9e:c6:39:fe:03:3f:37:28: 4c:48:6b:e1:1c:8a:e0:5e:80:ad:15:81:70:41:d3:74:fa:f6: 84:e4:82:23:ac:36:75:a3:9b:b0:6c:12:7c:b4:a7:c0:91:ad: 00:55:a0:93 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUEXECkvridXWY1gkM2aarq2M/6G0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAyNloX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZDVkN2YzYmNhY2VjN2MzNmVjNWFh ZjFjZDU2MGQzZTE5YTRmNDg5ZTc4NGEwMDMyMjQzMzRkNDEyZGIzMjI2NjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbOTTPxAPL2w++1SS83EREya2I/J B4oEnhr6PfkH9nF1mHLK1erZLmJNFgzkCyquDgAgYuFVrF9r9JmAIp9PKfXltuSP fslEegQJuVxSVcwcP1P2ERXz04kxnvp0H6voGpFmmAdCEXw4+4zvGyZEjczZ2e4F v5W/25dapsjwu3XT/5j8x5dgDHnHdxXcKQn4gQETF9O3efY1ZDrPNHmFiv+/Ecj/ AN9Gx164mmUg6HvL7IqnmbHnWtC3xD8UUDadtCQ+VWIsleFL0INq4/5qFNhDNqW+ Zabt1Rvll8oBBUnP5Gf31w+gvpCdHUd9gIiy5v2pglWufN/yuD049L4JFQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGAaEPEEsABB7IHklOqZIgmIYjRNMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzgyNDU2ZmYyLWY4YzQtNGM1YS05NDU4LTgyZDkwOWY4M2Y3ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynEMA0GCSqGSIb3DQEBCwUAA4IBAQBKhnckiNuzXKafrIeZj8l3 WsMzpJxbkmRs8kUj80DDY18IMj5SMcTl6+eedpa224Y+77Y+ux6hUmu5xD7knZeW 0blvRwfg6x7ETlZv6paHbfa2oNtlNTf2OY6EnhgzLZcWXOkBpRbWvpLA/GS5Jh7D f0Bd0EacFmJtuSXiETSI9OfbvQV5reF1bZ/K4vLy0q/FB46zcXdwZFfC7JkWxJkF Kl5EPhDaICY17KhpkSBxb6Zqd+Ur4BANQHD2J+mQ7brjfBFzTaXQnK4O3jz/YWxf nsY5/gM/NyhMSGvhHIrgXoCtFYFwQdN0+vaE5IIjrDZ1o5uwbBJ8tKfAka0AVaCT -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:07 2026 by rpki-client